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[57] ABSTRACT 

A system for the synchronization of encryption devices 
in a digital cellular communications system. Each of the 
encryption devices includes a multi-bit counter and 
generates a pseudo-random keystream which is com- 
bined with the data to be encrypted. The keystream is a 
function of the multi-bit counter value which is periodi- 
cally incremented in response to a series of clock pulses. 
To allow proper decryption of the encrypted data, the 
system of the present invention provides continuous or 
very frequent updates of the transmitter counter value 
which may be used to reset the receiver counter and to 
resynchronize the system without the necessity of reini- 
tialization and repetition of the intervening clock pulses. 

58 Claims, 5 Drawing Sheets 
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not all, instances of eavesdropping will go undetected 

CONTINUOUS CIPHER SYNCHRONIZATION and, therefore, unpunished and undeterred. The possi- 

FOR CELLULAR COMMUNICATION SYSTEM bility that a competitor or a foe may decide to "tune in" 

to one's seemingly private telephone conversations has 

CROSS REFERENCE TO RELATED 5 heretofore hindered the proliferation of cellular radio 

APPLICATIONS communication systems and, left unchecked, will con- 

This application contains subject matter related to tinue to threaten the viability of such systems for busi- 

co-pending U.S. patent application Ser. No. 556,358, nesses and government applications. 

entitled "Encryption System for Digital Cellular Com- It has recently become clear that the cellular radio 

munication", and also to co-pending U.S. patent appli- 10 telecommunications systems of the future will be imple- 

cationSer. No. 556,103, entitled "Resynchronization of mented using digital rather than analog technology. 

Encryption Systems upon Handoff*, both of which The switch to digital is dictated, primarily, by consider- 

were filed on even date herewith and assigned to the ations relating to system speed and capacity. A single 

assignee of the present invention. Such applications and analog, or voice, radio frequency (RF) channel can 

the disclosures therein are hereby incorporated by ref- 15 accommodate four (4) to six (6) digital, or data, RF 

erence herein. channels. Thus, by digitizing speech prior to transmis- 

DArtrrDrMivm rur txstz TM\/r:xrrTrkTM sion over the voice channel, the channel capacity and, 

BACKGROUND OF THE INVENTION consequently the overall system capacity, may be in- 

1. Field of the Invention creased dramatically without increasing the bandwidth 
The present invention relates to digital cellular com- 20 0 f the voice channel. As a corollary, the system is able 

munication systems, and more particularly, to a method to handle a substantially greater number of mobile sta- 

and apparatus for the encryption of data communica- t j ons at a significantly lower cost. 

tions within such a system. Although the switch from analog to digital cellular 

2. History of the Prior Art radio systems ameliorates somewhat the likelihood of 
Cellular radio communications is, perhaps, the fastest 25 breeches in ^ seC urity of communications between the 

growing field in the world-wide telecommunications base station ^ the mobile slationj ^ risk of electronic 
industry. Although cellular radio communication sys- eavesdropping is far from eliminated. A digital receiver 
terns comprise only a small fraction of the telecommum- be constructed which is capable 0 f decoding the 

cations systems presently m operation, it is widely be- di |tfll si ls and ati the original speech . The 
heved that this fraction will steadily increase and will 30 h £ dwafe fee more c0 licaled and the under tak- 
represent a major portion of the entire tele^mmunica- ^ ^ xhm ±Q c ^ q{ m&] 

tions market in the not too distant future. This belief is ■ u ♦ *u wr+ ■ * *u«* u- uu. J™.^„«i ~ 
, . . . . , . . . - i sion, but the possibility persists that highly personal or 
grounded in the inherent limitations of conventional ' K . J " . . „ , \,- 
Telephone communications networks which rely pri- sensit * ve conversations m a digital cellular radio system 
marUy on wire technology to connect subscribers 35 ™> monitored by a third party and potentially used 
within the network. A standard household or office to the detnment of the system users^Moreover, the very 
telephone, for example, is connected to a wall outlet, or Polity of a third party eavesdropping on a tele- 
phone jack, by a telephone cord of a certain maximum P h ° ne conversation automatically precludes the use of 
length. Similarly, wires connect the telephone outlet cellular telecommunications in certain government ap- 
with a local switching office of the telephone company. 40 Potions. Certain business uses may be equally sensi- 
A telephone user's movement is thus restricted not only tive to the possibility of a security breech. Thus, to 
by the length of the telephone cord, but also by the render cellular svstems « viable alternatives to the 
availability of an operative telephone outlet, i.e. an conventional wireline networks, security of commum- 
outlet which has been connected with the local switch- cations must be available on at least some circuits, 
ing office. Indeed, the genesis of cellular radio systems 45 Once a decision has been made to protect the trans- 
can be attributed, in large part, to the desire to over- mission of digital information (data) from unauthorized 
come these restrictions and to afford the telephone user access, the originator (sender) and the intended recipi- 
the freedom to move about or to travel away from his ent (receiver) of the data must agree on a secret mecha- 
home or office without sacrificing his ability to commu- nism for enciphering (encrypting) and deciphering (de- 
nicate effectively with others. In a typical cellular radio 50 crypting) the information. Such an agreement usually 
system, the user, or the user's vehicle, carries a rela- involves a mutual commitment to use a particular en- 
tively small, wireless device which communicates with cryption device which may be widely available, but 
a base station and connects the user to other mobile which can be programmed with a secret key specific to 
stations in the system and to landline parties in the pub- the sender and receiver. The agreement, however, must 
lie switched telephone network (PSTN). 55 also include choices with respect to the encryption 
A significant disadvantage of existing cellular radio technique and the method of synchronization to be used 
communication systems is the ease with which analog by the encryption device. 

radio transmissions may be intercepted. In particular, Several encryption techniques are known and imple- 

some or all of the communications between the mobile mented by prior art encryption devices. In one such 

station and the base station may be monitored, without 60 technique, known as "block substitution", the secret 

authorization, simply by tuning an appropriate elec- key bits are mixed with blocks of data bits to produce 

tronic receiver to the frequency or frequencies of the blocks of encrypted data. With block substitution, 

communications. Hence, anyone with access to such a blocks of data bits which differ merely by a single bit 

receiver and an interest in eavesdropping can violate produce encrypted data blocks which differ, on the 

the privacy of the communications virtually at will and 65 average, in one half (J) of their bit positions, and vice 

with total impunity. While there have been efforts to versa. Similarly, encrypted data blocks differing only in 

make electronic eavesdropping illegal, the clandestine one bit position will produce decrypted data blocks 

nature of such activities generally means that most, if differing, on the average, in one half (J) of their bit 
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positions. This type of encryption/decryption tends to quent basis to avoid the accumulation of errors caused 

magnify the effects of bit errors which may occur upon by the divergence of the receiver counter value from 

transmission of the encrypted data and, therefore, is not the transmitter counter value for a relatively long per- 

an appropriate technique for use in digital radio com- iod of time. The present invention prevents such accu- 

munications. 5 mulation of errors by providing continuous or very 

Another known encryption technique relies on a frequent updates of the transmitter counter value which 

keystream generator and modular arithmetic or finite may be used to reset the receiver counter and to resyn- 

math. A plurality of secret key bits and a series of clock chronize the system without the necessity of reinitializa- 

pulses are applied to the keystream generator which tion and repetition of the intervening clock pulses, 

generates a stream of pseudo-random bits referred to as 10 cttmmap v of thf tntvpnttton 

a keystream. The keystream bits are then bit-by-bit SUMMARY OF THE INVENTION 

mod ul o-2 added to the data bits prior to transmission by In one aspect of the invention there is included a 

the sender. An identical keystream generator is used by method of communicating cryptographically encoded 

the receiver to produce an identical keystream of bits data within a digital telecommunications system in 

which are then bit-by-bit modulo-2 subtracted from the 15 which a first pseudo-random key stream of bits is gener- 

received encrypted data stream to recover the original ated in accordance with an algorithm that is a function 

data. Proper implementation of this technique requires of a multi-bit digital value contained in a first register, 

that the sender and receiver keystream generators be The value contained in the first register is incremented 

synchronized so that the keystream generated at the at regular periodic intervals to vary the pattern of bits in 

receiver and subtracted from the encrypted data is in 20 the first key stream. The bits of the first pseudo-random 

harmony with the keystream generated at the sender key stream are combined with a stream of data bits 

and added to the original data. carrying communications information to cryptographi- 

An encryption technique which generates a large cally encode the data and the encoded data is transmit- 

number of complex keystream bits and which may be ted to a receiver. Also transmitted to the receiver at 

implemented in a general purpose Arithmetic and Logic 25 regular periodic intervals and interspersed with the 

Unit (ALU) is disclosed in co-pending U.S. patent ap- transmissions of encoded data is the value contained in 

plication Ser. No. 556,358, entitled "Encryption System said first register. A second pseudo-random key stream 

For Digital Cellular Communication", and referred to of bits is generated in accordance with the algorithm 

above. The present invention is directed to a method which is a function of a multi-bit digital value contained 

and apparatus for synchronizing the encryption and 30 in a second register. The value contained in the second 

decryption of data transmitted over a communications register is incremented at the same regular periodic 

link such as an RF channel in a digital cellular commu- intervals as the first register to vary the pattern of bits in 

nications system. the second key stream in an identical fashion to the 

A variety of approaches to the issue of synchroniza- pattern of bits in the first key stream. The bits of the 

tion may be found in prior art encryption systems. In 35 second pseudo-random key stream are combined with 

most encryption systems, synchronization may be the received stream of cryptographically encoded data 

viewed as an agreement between the sender and the to decode the data into the communications information 

receiver on the number of clock pulses to be applied and the value contained in the second register is periodi- 

from a common initial state until the generation of a cally compared with the received value of the first 

particular bit. Other prior art encryption systems, how- 40 register to determine whether the two values match for 

ever, do not keep a running count of the number of corresponding moments of time and whether the first 

applied clock pulses and rely, instead, on the initializa- and second key streams are in synchronism with one 

tion of the sender and receiver to the same state at the another. In a related aspect, the value contained in the 

beginning of a frame and the application of an identical second register is reset with the received value of the 

number of clock pulses thereafter. The shortcoming of 45 first register for a corresponding moment in time when 

the latter scheme is the difficulty of reestablishing syn- the values have become different to resynchronize the 

chronization should the sender and receiver fall out of first and second key streams with one another, 

synchronization during a particular frame. In another aspect of the invention there is included a 

Yet another type of encryption system includes a method for duplex communication of cryptographically 

counter which maintains a count of the number of keys- 50 encoded data within a digital telecommunications sys- 

tream bits, or blocks of keystream bits, previously gen- tern. In this aspect a first pseudo-random key stream of 

erated. The output bits of the counter are combined bits is generated at a first location in accordance with an 

with the secret key bits to generate the keystream. Be- algorithm which is a function of a multi-bit digital value 

cause the transmitter and receiver counters are incre- contained in a first register. The value contained in said 

mented on a regular basis and, therefore, take on the 55 first register is incremented at regular periodic intervals 

characteristics of a digital time/date clock, such an to vary the pattern of bits in the first key stream. The 

encryption system is often referred to as a time-of-day bits of the first pseudo-random key stream is combined 

driven encryption system. with a stream of data bits carrying communications 

The advantage of the time-of-day driven encryption information to be sent from the first location to a second 

system resides in the fact that if the receiver counter 60 location to cryptographically encode the data stream 

falls out of synchronization with the transmitter counter and with a stream of cryptographically encoded data 

and the system has the capability of providing the re- stream received from the second location. The data 

ceiver with the current transmitter counter value, the stream encoded at the first location is transmitted to a 

receiver counter may be immediately reset to the trans- receiver at the second location along with the value 

mitter counter value instead of returning to the begin- 65 contained in the first register which is sent at regular 

ning and applying the entire history of clock pulses. The periodic intervals and interspersed with the transmis- 

difficulty with such a system, however, is the provision sions of encoded data. A second pseudo-random key 

of the transmitter counter value on a sufficiently fre- stream of bits which is a function of a multi-bit digital 
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value contained in the second register is generated in B1-B10 may be located near the periphery, or other- 
accordance with the algorithm. The value contained in wise away from the centers of the cells C1-C10 and 
the second register is incremented at the same regular may illuminate the cells C1-C10 with radio signals ei- 
peribdic intervals as the first register to vary the pattern ther omni-directionally or directionally. Therefore, the 
of bits in the second key stream in an identical fashion to 5 representation of the cellular radio system of FIG. 1 is 
the pattern of bits in the first key stream. The bits of the for purposes of illustration only and is not intended as a 
second pseudo-random key stream are combined with limitation on the possible implementations of the cellu- 
the stream of cryptographically encoded data received lar radio system. 

at the second location to decode the data into the com- With continuing reference to FIG. 1, a plurality of 

munications information and with a stream of data bit 10 mobile stations M1-M10 may be found within the cells 

carrying communications information to be sent from C1-C10. Again, only ten mobile stations are shown in 

the second location to the first location to cryptographs FIG. 1 but it should be understood that the actual num- 

cally encode the data stream. The data stream encoded ber of mobile stations may be much larger in practice 

at the second location is transmitted to a receiver at the and will invariably exceed the number of base stations, 

first location and the value contained in the second 15 Moreover, while none of the mobile stations M1-M10 

register is periodically compared with the received may be found in some of the cells C1-C10, the presence 

value of the first register to determine whether the two or absence of the mobile stations M1-M10 in any partic- 

values correspond for corresponding moments of time ular one of the cells C1-C10 should be understood to 

and whether the first and second key streams are in depend, in practice, on the individual desires of each of 

synchronism with one another. 20 the mobile stations M1-M10 who may roam from one 

BRIEF DESCRIPTION OF THE DRAWINGS IoCati ° n ™ V? 6 " t0 an0 1 t , her 0r from one cel1 10 m adja " 

cent or neighboring cell. 

The present invention will be better understood and Each of the mobile stations M1-M10 is capable of 
its numerous objects and advantages will become appar- initiating or receiving a telephone call through one or 
ent to those skilled in the art by reference to the follow- 25 more of the base stations B1-B10 and a mobile switch- 
ing drawings in which: ing center MSC. The mobile switching center MSC is 
FIG. 1 is a pictorial representation of a cellular radio connected by communications links, e.g. cables, to each 
communications system including a mobile switching of the illustrative base stations B1-B10 and to the fixed 
center, a plurality of base stations and a plurality of public switching telephone network (PSTN), not 
mobile stations; 30 shown, or a similar fixed network which may include an 
FIG. 2 is a schematic block diagram of mobile station integrated system digital network (ISDN) facility. The 
equipment used in accordance with one embodiment of relevant connections between the mobile switching 
the system of the present invention; center MSC and the base stations B1-B10, or between 
FIG. 3 is a schematic block diagram of base station the mobile switching center MSC and the PSTN or 
equipment used in accordance with one embodiment of 35 ISDN, are not completely shown in FIG. 1 but are well 
the system of the present invention; known to those of ordinary skill in the art. Similarly, it 
FIG. 4 is a schematic block diagram of a prior art is also known to include more than one mobile switch- 
time-of-day driven encryption system; ing center in a cellular radio system and to connect each 
FIG. 5 is a pictorial representation of a message for- additional mobile switching center to a different group 
mat used by a known synchronization mechanism; 40 of base stations and to other mobile switching centers 

FIG. 6 is a schematic block diagram of a time-of-day via cable or radio links, 
or block-count driven encryption system which in- Each of the cells C1-C10 is allocated a plurality of 
eludes a synchronization mechanism constructed in voice or speech channels and at least one access or 
accordance with the present invention; and control channel. The control channel is used to control 
FIG. 7 is a pictorial representation of an exemplary 45 or supervise the operation of mobile stations by means 
multiplexing format which may be used in accordance of information transmitted to and received from those 
with the present invention. units. Such information may include incoming call sig- 
DETAILED DESCRIPTION OF THF nals * out S oin S call signals, page signals, page response 
PRF^RRFn fStmf^t si S nals ' Iocation registration signals, voice channel as- 
PREFERRED EMBODIMENT 5Q signmentS) ma i n tenance instructions and "handoff ' in- 
Referring first to FIG. 1, there is illustrated therein a structions as a mobile station travels out of the radio 
conventional cellular radio communications system of a coverage of one cell and into the radio coverage of 
type to which the present invention generally pertains. another cell. The control or voice channels may operate 
In FIG. 1, an arbitrary geographic area may be seen either in an analog or a digital mode or a combination 
divided into a plurality of contiguous radio coverage 55 thereof. In the digital mode, analog messages, such as 
areas, or cells, C1-C10. While the system of FIG. 1 is voice or control signals, are converted to digital signal 
shown to include only 10 cells, it should be clearly representations prior to transmission over the RF chan- 
understood that, in practice, the number of cells may be nel. Purely data messages, such as those generated by 
much larger. computers or by digitized voice devices, may be format- 
Associated with and located within each of the cells 60 ted and transmitted directly over a digital channel. 
C1-C10 is a base station designated as a corresponding In a cellular radio system using time division multi- 
one of a plurality of base stations B1-B10. Each of the plexing (TDM), a plurality of digital channels may 
base stations B1-B10 includes a transmitter, a receiver share a common RF channel. The RF channel is di- 
and controller as is well known in the art. In FIG. 1, the vided into a series of "time slots", each containing a 
base stations B1-B10 are located at the center of the 65 burst of information from a different data source and 
cells C1-C10, respectively, and are equipped with om- separated by guard time from one another, and the time 
ni-directional antennas. However, in other configura- slots are grouped into "frames" as is well known in the 
tions of the cellular radio system, the base stations art. The number of time slots per frame varies depend- 
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ing on the bandwidth of the digital channels sought to of control information. The interleaved SACCH data 

be accommodated by the RF channel. The frame may, forms one of the inputs to a burst generator 111. An- 

for example, consist of three (3) time slots, each of other input to the burst generator 111 is provided by the 

which is allocated to a digital channel. Thus, the RF output of the modulo-2 adder 109. The burst generator 

channel will accommodate three digital channels. In 5 111 produces "message bursts" of data, each consisting 

one embodiment of the present invention discussed of a time slot identifier (TI), a digital voice color code 

herein, a frame is designated to comprise three time (DVCC), control or supervisory information and the 

slots. However, the teachings of the present invention data to be transmitted, as further explained below, 

should be clearly understood to be equally applicable to Transmitted in each of the time slots in a frame is a 

a cellular radio system utilizing any number of time slots 10 time slot identifier (TI), which is used for time slot 

per frame. identification and receiver synchronization, and a digi- 

Referring next to FIG. 2, there is shown therein a tal voice color code (DVCC), which ensures that the 
schematic block diagram of the mobile station equip- proper RF channel is being decoded. In the exemplary 
ment which are used in accordance with one embodi- frame of the present invention, a set of three different 
ment of the present invention. The equipment illus- 15 28-bit TIs is defined, one for each time slot while an 
trated in FIG. 2 may be used for communication over identical 8-bit DVCC is transmitted in each of the three 
digital channels. A voice signal detected by a micro- time slots. The TI and DVCC are provided in the mo- 
phone 100 and destined for transmission by the mobile bile station by a sync word/DVCC generator 112 con- 
station is provided as input to a speech coder 101 which nected to the burst generator 111 as shown in FIG. 2, 
converts the analog voice signal into a digital data bit 20 The burst generator 111 combines the outputs of the 
stream. The data bit stream is then divided into data modulo-2 adder 109, the 22-burst interleaver 110 and 
packets or messages in accordance with the time divi- the sync word/DVCC generator 112 to produce a se- 
sion multiple access (TDM A) technique of digital com- ries of message bursts, each comprised of data (260 bits), 
munications. A fast associated control channel SACCH information (12 bits), TI (28 bits), coded 
(FACCH) generator 102 exchanges control or supervi- 25 DVCC (12 bits) and 12 delimiter bits for a total of 324 
sory messages with a base station in the cellular radio bits which are integrated according to the time slot 
system. The conventional FACCH generator operates format specified by the EIA/TIA IS-54 standard, 
in a "blank and burst" fashion whereby a user frame of Each of the message bursts is transmitted in one of the 
data is muted and the control message generated by the three time slots included in a frame as discussed herein- 
FACCH generator 102 is transmitted instead at a fast 30 above. The burst generator 111 is connected to an 
rate. equalizer 113 which provides the timing needed to syn- 

In contrast to the blank and burst operation of the chronize the transmission of one time slot with the 
FACCH generator 102, a slow associated control chan- transmission of the other two time slots. The equalizer 
nel (SACCH) generator 103 continuously exchanges 113 detects timing signals sent from the base station 
control messages with the base station. The output of 35 (master) to the mobile station (slave) and synchronizes 
the SACCH generator is assigned a fixed length byte, the burst generator 111 accordingly. The equalizer 113 
e.g. 12 bits, and included as a part of each time slot in may also be used for checking the values of the TI and 
the message train (frames). Channel coders 104, 105, 106 the DVCC. The burst generator 111 is also connected 
are connected to the speech coder 101, FACCH genera- to a 20 ms frame counter 114 which is used to update a 
tor 102 and SACCH generator 103, respectively. Each 40 ciphering code that is applied by the mobile station 
of the channel coders 104, 105, 106 performs error de- every 20 ms, i.e., once for every transmitted frame. The 
tection and recovery by manipulating incoming data ciphering code is generated by a ciphering unit 115 with 
using the techniques of convolution^ encoding, which the use of a mathematical algorithm and under the con- 
protects important data bits in the speech code, and trol of a key 116 which is unique to each mobile station, 
cyclic redundancy check (CRC), wherein the most 45 The algorithm may be used to generate a pseudo-ran- 
significant bits in the speech coder frame, e.g., 12 bits, dom keystream in accordance with the present inven- 
are used for computing a 7 bit error check. tion and as discussed further below. 

Referring again to FIG. 2, the channel coders 104, The message bursts produced by the burst generator 

105 are connected to a multiplexer 107 which is used for 110 are provided as input to an RF modulator 117. The 

time division multiplexing of the digitized voice mes- 50 RF modulator 117 is used for modulating a carrier fre- 

sages with the FACCH supervisory messages. The quency according to the /4-DQPSK technique (/4 

output of the multiplexer 107 is coupled to a 2-burst shifted, differentially encoded quadrature phase shift 

interleaver 108 which divides each data message to be key). The use of this technique implies that the informa- 

transmitted by the mobile station (for example, a mes- tion to be transmitted by the mobile station is differen- 

sage containing 260 bits) into two equal but separate 55 tially encoded, i.e., two bit symbols are transmitted as 4 

parts (each part containing 130 bits) arranged in two possible changes in phase: + or — /4 and -i- or —3/3. 

consecutive time slots. In this manner, the deteriorative The carrier frequency for the selected transmitting 

effects of Rayleigh fading may be significantly reduced. channel is supplied to the RF modulator 117 by a trans- 

The output of the 2-burst interleaver 108 is provided as mitting frequency synthesizer 118. The burst modulated 

input to a modulo-2 adder 109 where the data to be 60 carrier signal output of the RF modulator 117 is ampli- 

transmitted is ciphered on a bit-by-bit basis by logical fled by a power amplifier 119 and then transmitted to 

modulo-2 addition with a pseudo-random keystream the base station through an antenna 120. 

which is generated in accordance with the system of the The mobile station receives burst modulated signals 

present invention described below. from the base station through an antenna 121 connected 

The output of the channel coder 106 is provided as 65 to a receiver 122. A receiver carrier frequency for the 
input to a 22-burst interleaver 110. The 22-burst inter- selected receiving channel is generated by a receiving 
leaver 110 divides the SACCH data into 22 consecutive frequency synthesizer 123 and supplied to a an RF de- 
time slots, each occupied by a byte consisting of 12 bits modulator 124. The RF demodulator 124 is used to 
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demodulate the received carrier signal into an interme- mobile station and the base station are substantially 

diate frequency signal. The intermediate frequency identical in construction and function. Such identical 

signal is then demodulated further by an IF demodula- equipment are, for the sake of convenience and consis- 

tor 125 which recovers the original digital information tency, designated with the same reference numerals in 

as it existed prior to /4-DQPSK modulation. The digital 5 FIG. 3 as those used in connection with FIG. 2, but are 

information is then passed through the equalizer 113 to differentiated by the addition of a prime (') in FIG. 3, 

a symbol detector 126 which converts the two-bit sym- There are, however, some minor differences between 

bol format of the digital data provided by the equalizer the mobile station and the base station equipment. For 

114 to a single bit data stream. instance, the base station has, not just one but, two 

The symbol detector 126 produces two distinct out- 10 receiving antennas 121'. Associated with each of the 
puts: a first output, comprised of digitized speech data receiving antennas 121' are a receiver 122', an RF de- 
and FACCH data, and a second output, comprised of modulator 124', and an IF demodulator 125'. Further- 
SACCH data. The first output is supplied to a modulo-2 more, the base station includes a programmable fre- 
adder 127 which is connected to a 2-burst deinterleaver quency combiner 118 A' which is connected to a trans- 
128. The modulo-2 adder 127 is connected to the cipher- 15 mitting frequency synthesizer 118'. The frequency com- 
ing unit 115 and is used to decipher the 4 encrypted biner 118 A' and the transmitting frequency synthesizer 
transmitted data by subtracting on a bit-by-bit basis the 118' carry out the selection of the RF channels to be 
same pseudo-random keystream used by the transmitter used by the base station according to the applicable 
in the base station encrypt the data and which is gener- cellular frequency reuse plan. The base station, how- 
ated in accordance with the teachings of the present 20 ever, does not include a user keyboard and display unit 
invention set forth below. The modulo-2 adder 127 and similar to the user keyboard and display unit 138 present 
the 2-burst deinterleaver 128 reconstruct the speech- in the mobile station. It does however include a signal 
/FACCH data by assembling and rearranging informa- level meter 100' connected to measure the signal re- 
tion derived from two consecutive frames of the digital ceived from each of the two receivers 122' and to pro- 
data. The 2-burst deinterleaver 128 is coupled to two 25 vide an output to the microprocessor 134'. Other differ- 
channel decoders 129, 130 which decode the convolu- ences in equipment" between the mobile station the base 
tionally encoded speech/FACCH data using the re- station may exist which are well known in the art. . 
verse process of coding and check the cyclic redun- The discussion thus far has focused on the operational 
dancy check (CRC) bits to determine if any error has environment of the system of the present invention. A 
occurred. The channel decoders 129, 130 detect distinc- 30 specific description of a particular embodiment of the 
tions between the speech data on the one hand, and any present invention follows. As disclosed above and used 
FACCH data on the other, and route the speech data hereinafter, the term "keystream" means a pseudo-ran- 
and the FACCH data to a speech decoder 131 and an dom sequence of binary bits or blocks of bits used to 
FACCH detector 132, respectively. The speech de- encipher a digitally encoded message or data signal 
coder 131 processes the speech data supplied by the 35 prior to transmission or storage in a medium which is 
channel decoder 129 in accordance with a speech coder susceptible to unauthorized access, e.g., an RF channel, 
algorithm, e.g. VSELP, and generates an analog signal A "keystream generator" means a device which gener- 
representative of the speech signal transmitted by the ates a keystream by processing a secret key comprised 
base station and received by the mobile station. A filter- of a plurality of bits. Encryption may be simply per- 
ing technique may then be used to enhance the quality 40 formed by a modulo-2 addition of the keystream to the 
of the analog signal prior to broadcast by a speaker 133. data to be encrypted. Similarly, decryption is per- 
Any FACCH messages detected by the FACCH detec- formed by a modulo-2 subtraction of an identical copy 
tor 132 are forwarded to a microprocessor 134. of the keystream from the encrypted data. 

The second output of the symbol detector 126 Generally speaking, the keystream generator pro- 

(SACCH data) is supplied to a 22-burst deinterleaver 45 vides a mechanism, represented by elements 115 and 

135. The 22-burst interleaver 135 reassembles and rear- 115' of FIGS. 2 and 3, respectively, for expanding a 
ranges the SACCH data which is spread over 22 con- relatively small number of secret bits, i.e., the secret 
secutive frames. The output of the 22-burst deinter- key, represented by elements 116 and 116', into a much 
leaver 135 is provided as input to a channel decoder larger number of keystream bits which are then used to 

136. FACCH messages are detected by an SACCH 50 encrypt data messages prior to transmission (or stor- 
detector 137 and the control information is transferred age). To decrypt an encoded message, the receiver must 
to the microprocessor 134. "know" the index to the keystream bits used to encrypt 

The microprocessor 134 controls the activities of the the message. In other words, the receiver must not only 

mobile station and communications between the mobile have the same keystream generator and generate the 

station and the base station. Decisions are made by the 55 same keystream bits as the transmitter, but also, the 

microprocessor 134 in accordance with messages re- receiver keystream generator must be operated in syn- 

ceived from the base station and measurements per- chronism with the transmitter keystream generator if 

formed by the mobile station. The microprocessor 134 the message is to be properly decoded. Synchronization 

is also provided with a terminal keyboard input and is normally achieved by transmitting from the encoding 

display output unit 138. The keyboard and display unit 60 system to the decoding system the initial contents of 

138 allows the mobile station user to exchange informa- every internal memory device, such as bit, block or 

tion with the base station. message counters, which participate in the generation 

Referring next to FIG. 3, there is shown a schematic of the keystream bits. Synchronization may be simpli- 

block diagram of the base station equipment which are fied, however, by using arithmetic bit block counters, 

used in accordance with the present invention. A com- 65 such as binary counters, and incrementing those count- 

parison of the mobile station equipment shown in FIG. ers by a certain amount each time a new block of keys- 

2 with the base station equipment shown in FIG. 3 tream bits is produced. Such counters may form a part 

demonstrates that much of the equipment used by the of a real-time, i.e. hours, minutes and seconds, clock 
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chain. A key stream generator relying on the latter type the number of bits to be transmitted by a considerable 

of counters is known as the "time-of-day M driven keys- factor, for example, a factor of eight (8), so as to provide 

tream generator to which reference was made herein- the redundancy needed to attain close to a hundred 

above. percent (100%) probability of error-free transmission of 

Referring now to FIG. 4, a schematic block diagram 5 the encoded count bits. Following the transmission of 

of a prior art time-of-day driven encryption system may the redundantly encoded but unencrypted preamble, 

now be seen. The upper half of FIG. 4 represents the the encrypted message bits are transmitted over the 

transmitter portion, and the lower half represents the transmission medium. 

receiver portion, of such an encryption system. In the The synchronization mechanism illustrated in FIG. 5 
transmitter portion, a time clock or block counter 201 10 may perhaps be adequate for communications over 
generates a count 213, for example, a 32-bit output, in simplex channels, i.e., "press-to-talk" or "over/over" 
response to an increment 215 applied at the input of the radiotelephony. If an "over" is missed due to faulty 
time clock or block counter 201. The count 213 is pro- synchronization, the user can simply request a repeat of 
vided as a first input to a combinatorial logic or mixing that transmission. By comparison, communications over 
process 202. A secret key, for example, the value 968 173 15 duplex channels, i.e., normal bi-directional radiotele- 
in binary notation, is provided as a second input 211 to phony, typically do not switch directions in an "over- 
the combinatorial logic or mixing process 202. With /over" fashion and conversations, once established, 
each occurrence of a new value for the count 213, the frequently continue for a substantial period of time. If a 
combinatorial logic or mixing process 202 combines or duplex communications system has no means of estab- 
mixes the secret key 211 with the count 213 and gener- 20 lishing synchronization other than at the beginning of a 
ates a plurality of pseudo-random keystream bits at a call, a loss of synchronization during the call would 
serial or parallel output 209. The keystream output 209 result in a loss of the call forcing the user to reestablish 
is then provided as an input to a modulo-2 adder 203. communications by placing another call. In the context 
The data to be encrypted forms a second input 207 to of a cellular radio system utilizing encryption/decryp- 
the modulo-2 adder 203. Each of the keystream bits is 25 tion devices, such a loss of synchronization would re- 
modulo-2 added to a particular data bit by the modulo-2 quire the user to take some affirmative action, for exam- 
adder 203 and the encrypted data is supplied to output pie, to redial the desired telephone number. The present 
218 for transmission through the medium. invention provides a method and apparatus which obvi- 
In the receiver portion, a time clock or block counter ate the necessity and inconvenience of redial upon loss 
204, which is identical in construction to the time clock 30 of synchronization and which provide frequent oppor- 
or block counter 201 and is provided with an increment tunities during an ongoing radio telephone conversation 
216 identical to the increment 215, supplies a count 214 to quickly correct any loss of synchronization between 
to a combinatorial logic or mixing process 205, which is the transmitter portion and the receiver portion de- 
identical in construction to the combinatorial logic or scribed in connection with FIG. 4. 
mixing process 202. The combinatorial logic or mixing 35 In the discussion of FIGS. 1-3, mention was made of 
process 205 combines or mixes the count 214 with an the Slow Associated Control Channel (SACCH) which 
identical secret key, i.e., 968173 in binary notation, is used to convey alow rate data stream of management 
which is provided at input 212, thereby producing a and control information between the mobile station and 
keystream at an output 210 which is identical to the the base station and vise versa. The SACCH is often 
keystream produced at the output 209. The keystream 40 used by the mobile station for the transmission of signal 
output 210. is bit-by-bit modulo-2 added to the en- strength information that allows the system to deter- 
crypted data received over the transmission medium by mine which of the surrounding base stations is best 
a modulo-2 adder 206. Since modulo-2 addition and suited for maintaining contact with the mobile station. 
modulo-2 substraction are the same operation, the As discussed hereinbefore, the SACCH information bits 
modulo-2 addition of the indentical keystream at the 45 are interleaved and multiplexed with the voice traffic 
receiver cancels the previous addition of the keystream bits prior to transmission. The present invention makes 
at the transmitter and results in the recovery of the additional use of the SACCH to continuously broadcast 
original data at output 208. Note, however, that such the state of the time clock or block counter which, as 
cancellation and proper deciphering of the encrypted previously described, controls the operation of the time- 
data will occur only if the time clocks or block counters 50 of-day or block-count driven encryption device. It 
201, 204 are perfectly synchronized with one another. should be clearly understood, however, that the teach- 
An appropriate synchronization mechanism 217 must ings of the present invention encompass the use of any 
be provided for this purpose. other low bit rate auxiliary channel which may be avail- 
Referring next to FIG. 5, there is shown therein a able in the system, 
message format used by a known synchronization 55 Referring now to FIG. 6, there is shown therein a 
mechanism. The message format reflects the arrange- schematic block diagram of time-of-day or block-count 
ment of data in each time slot (burst) of a frame. Imme- driven encryption system, including a synchronization 
diately following the beginning of each message, i.e., mechanism constructed in accordance with the present 
after message start, all the state values (output bits) of invention. A ciphering unit 220 at the transmitter, e.g., 
the time clock or block counter 201, e.g., all 32 bits of 60 the transmitter portion in FIG. 5, converts a stream of 
the count 213, are transmitted as a preamble to a se- message bits into a stream of enciphered bits for trans- 
quence of encrypted message bits. To avoid transmis- mission at a mean data rate of Bi bits/second. The ci- 
sion errors which could cripple synchronization, the phering unit 220 also provides a current time-of-day or 
count bits are preferably redundantly encoded using a block count, e.g., the count 213, to an auxiliary, low rate 
powerful error correction code and the coded bits inter- 65 channel encoder 221. Depending on the extent of other 
leaved within the transmitted signal to disperse the low-rate data, the encoder 221 may include the encoded 
redundancy in time thereby increasing tolerance to time-of-day or block count in an output stream gener- 
burst errors. The coding of the count bits should expand ated at an average rate of B2 bits/second. The auxiliary 
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stream of B2 bits/second is then combined with the It will be appreciated from the foregoing description 

enciphered message stream of Bl bits/second by a mul- that the present invention provides a synchronization 

tiplexer 222 to produce a stream of B1+B2 bits/second mechanism which may be used independently of the 

for transmission over the communications medium. specific encryption and decryption technique used by 

It should be recognized that other overhead bits, such 5 the ciphering unit 220 and the deciphering unit 224, 

as demodulator synchronization patterns or further respectively. The encryption of data in the communica- 

redundancy of the data in the form of error correction t ions system may be performed by modulo-2 addition of 

coding, may be added prior to transmission of the the keystream to the data stream, by random transposi- 

stream of Bl + B2 bits/second, but is not specifically t ion of the data, i.e., alteration of the order in which the 

shown in the simplified block diagram of FIG. 6. More- 10 data bits normally appear in the message format, or by 

over, the use of the burst transmission technique (dis- a combination of these techniques without departing in 

cussed in connection with FIGS. 1-3) may result in a the least from the teachings of the present invention as 

burst bit rate greater than Bl +B2 bits/second over the disclosed above and further described below, 

transmission medium. Nevertheless, after performance In duplex communication applications, such as mo- 

of the inverse of such encoding processes at the re- 15 bi j e radio te l e phony, the present invention, as hereto- 

ceiver, an average bit rate of B1+B2 bits/second fore illustrated and described, may be used indepen- 

should once more emerge at the input to a demulti- dently in ^ direction . Specifically, the encryption 

£f XC Ll 7 hlCh . dlVldCS thC ' nc T mg StrCam ° f device used for encrypting transmissions in one direc- 

B +B2 bits/second into an enciphered message stream ^ ma indude a time c , ock QT bJock coumer which fe 

of Bl bits/second and an encoded low-rate control 20 sepa rate from, and possibly unrelated to, the time clock 

stream of B2 bits/second. The B l bits/second enci- Qf block counter £ ^ d tion device used for 

phered message stream is provided as input to a dec- d ti tions in the ^ direction , Similarl 

P ^^^S^^S^ ™; £ t£? the low * rate channel > which is used to p eriod *- 

generates a stream of deciphered data. The B2 bits A «. c ^ * * * i j . lL 

second control stream, on the other hand, is supplied to 25 <f y tran f r the count state value m accordance with 

an auxiliary, low-rate channel decoder 228. the P resent ™ ei \ tlon > » » du P lex channel Providing 

The auxiliary channel decoder 228 detects the receipt ^'taneous bi-directional communications. An ad- 
of any time-of-day or block count data which may have vant *S eous alternative arrangement would rely on a 
been transmitted by the encryption device and checks sm * le 1™™™*? « Mode-count driven keystream 
to determine whether such data was correctly received 30 g en f ator at end of the communications link to 
before resetting the decryption device. The error check P roduce a sufficient number of keystream bits for use 
is performed in order to avoid resetting the time clock ^h in enciphering data messages prior to transmission 
or block counter at the receiver, e.g., the time clock or and m deciphering received data messages, 
block counter 204, with a new time-of-day or block Assuming that the number of message bits m a trans- 
count which is inaccurate due to transmission errors. A 35 mitted or received block in either direction is the same, 
correctly received time-of-day or block count is passed md 10 N » the keystream generator at one end of 
from the auxiliary channel decoder 228 to the decipher- the communications link would produce, using the same 
big unit 224 where the received count is used to verify secret ke V blts block counts ^ in the case of two 
and, if necessary, update the current count at the de- keystream generators, a first N keystream bits, A=(al, 
cryption device, e.g., the count 214 in FIG. 5. 40 a2, a3. . . aN), for enciphering transmitted messages and 

The process of verifying and updating of the receiver a second N keystream bits, B=(a(n+1), a (n+2). . . 

block count includes a number of steps and safeguards. a (2N)). for deciphering received messages. The use of 

In particular, account must be taken of the transmission the N-bit keystreams A, B for enciphering and deci- 

delays through the auxiliary channel. For example, as Peering, respectively, would then be reversed at the 

discussed in connection with FIGS. 1-3, the SACCH 45 other end of the communications link. Hence, only one 
data is usually interleaved or spread over a plurality of block count synchronization is necessary and this syn- 

consecutive message frames. Thus, for example, the chronization may be achieved using the low-rate auxil- 

transmitter block count value for a frame x at a specific channel in one direction only, 

moment of time is spread over y frames and transmitted As mentioned earlier, the chief function of the 

in a series of frames, x, x + 1, x + 2, . . . , x + y . The delay 50 SACCH is to carry signal strength information from the 

y, however, is a system-defined constant number which mobile station to a base station in the land network. The 

may be added at the receiver to the block count value SACCH in the opposite direction, i.e., base station to 

derived from the frames x, x+1, x+2, ...,x+yanda mobile station, exists mainly because of symmetry 

current transmitter block count value obtained. The reasens and often lays idle. Consequently, it may be 

current transmitter block count value is then compared 55 advantageous to designate the base station's time clock 

to the current receiver block count value and, in the or block counter as the "master" and to periodically 

event of divergence, the receiver block counter is reset transmit the base station's count value in the frequently 

to the value of the transmitter block counter for the idle SACCH direction to the mobile station so as to 

corresponding moment of time. provide continuous resynchronization in accordance 

Further error protection may be built into the method 60 with the foregoing description of the present invention, 
of resetting the receiver block count, in the event of Should the need arise to transfer some other low-rate 
disagreement with the transmitter block count, by im- data over the SACCH in the direction of land network 
posing a more severe criterion for resetting the most to mobile station, the other data may be accorded prior- 
significant bits, or for otherwise causing a drastic step ity and transmission of the base station count value may 
change in the receiver count value. The latter may be 65 be resumed thereafter. In this aspect of the present in- 
achieved, for example, by using the technique of "ma- vention, transmission of the time-of-day or block count 
jority vote" over several count transfers, after allowing value may be considered to represent the default state of 
for the known increment between times. the SACCH channel in the direction of land network to 
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mobile which is interrupted for the transmission of 
higher priority messages. 

The N or 2N bits produced by a keystream generator 
with each new value of the associated time clock or 
block counter are used for enciphering or deciphering 5 
groups of N message data bits in one or both directions, 
respectively. Multiplexed with these N-bit message 
groups are additional bits forming the auxiliary low-rate 
channel, which may be used, inter alia, for cipher syn- 
chronization in accordance with the present invention. 10 
Several different patterns may be used for multiplexing 
the auxiliary channel bits with the message data bits. 
However, to minimize the amount of overhead bits 
which are added to blocks of data by the auxiliary low- 
rate bit stream, a multiplexing format as illustrated in 15 
FIG. 7 may be selected. 

Referring now to FIG. 7, there is shown therein an 
exemplary multiplexing format which may be used in 
accordance with the present invention. FIG. 7 illus- 
trates how a small number of low-rate channel bits, SI, 
S2, S3, S4 etc., may be included in each N-bit message 
group, the whole auxiliary message format only re- 
peated over a number of such groups. Assuming that 
the auxiliary bit stream contains its own message start 25 
indicator code, the auxiliary message length does not 
necessarily need to be contained in an integral number 
of message groups. However, auxiliary message syn- 
chronization may be simplified if the auxiliary message 
length is deliberately aligned with an integral number of 3Q 
traffic message blocks. 

FIG. 7 also illustrates how interleaving of the auxil- 
iary bit streams over a number of message blocks may 
be used to disperse the burst errors that can arise if a 
whole message block, including auxiliary bits, is not 35 
correctly received. Where the decoder for the low-rate 
channel is equipped with error correction coding, the 
dispersal of such burst errors enables the decoder to 
easily detect and correct such errors. 

The foregoing description shows only certain partic- 40 
ular embodiments of the present invention. However, 
those skilled in the art will recognize that many modifi- 
cations and variations may be made without departing 
substantially from the spirit and scope of the present 
invention. Accordingly, it should be clearly understood 45 
that the form of the invention described herein is exem- 
plary only and is not intended as a limitation on the 
scope of the invention as defined in the following 
claims. 

What is claimed is: 50 
1. A method of communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system, comprising: 
generating a first pseudo-random key stream of bits in 
accordance with an algorithm which is a function 55 
of a multi-bit digital value contained in a first regis- 
ter; 

incrementing the value contained in said first register 
at defined intervals to vary the pattern of bits in the 
first key stream; 60 

combining the bits of the first pseudo-random key 
stream with a stream of data bits carrying commu- 
nications information to cryptographically encode 
said data; 

transmitting said encoded data to a receiver; 65 
transmitting to said receiver at intervals and inter- 
spersed with said transmissions of encoded data the 
value contained in said first register; 
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generating a second pseudo-random key stream of 
bits in accordance with said algorithm which is a 
function of a multi-bit digital value contained in a 
second register; 
incrementing the value contained in said second reg- 
ister at the same defined intervals as said first regis- 
ter to vary the pattern of bits in the second key 
stream in an identical fashion to the pattern of bits 
in the first key stream; 
combining the bits of the second pseudo-random key 
stream with the received stream of cryptographi- 
cally encoded data to decode said data into said 
communications information; and 
periodically comparing the value contained in said 
second register with the received value of the first 
register to determine whether the two values cor- 
respond for corresponding moments of time and 
whether the first and second key streams are in 
synchronism with one another. 

2. A method of communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 1 which also includes: 

resetting the value contained in said second register 
with the received value of the first register for a 
corresponding moment in time when the values 
have become different to resynchronize the first 
and second key streams with one another. 

3. A method of communicating with cryptographi- 
cally encoded data within a digital telecommunications 
systems as set forth in claim 1 in which: 

said step of transmitting to said receiver at intervals 
and interspersed with said transmissions of en- 
coded data the value contained in said first register 
includes multiplexing said encoded data transmis- 
sions and said transmissions of first register values. 

4. A method of communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 3 in which: 

said first register values are transmitted on a low bit 
rate auxiliary channel of a digital cellular commu- 
nications stream. 

5. A method of communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 4 wherein: 

said low bit rate auxiliary channel is a slow associated 
control channel. 

6. A method of communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 4 wherein: 

said first register values are transmitted along with 
other low-rate data on said low bit rate auxiliary 
channel. 

7. A method of communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 6 in which: 

transmission of said first register values are temporar- 
ily interrupted when it is necessary to transmit 
other data on said low bit rate auxiliary channel. 

8. A method of communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 3 in which components of 
each of said first register values multiplexed with said 
encoded data transmissions are dispersed within several 
successive blocks of transmitted data. 

9. A method of communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 1 in which: 
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said step of periodically comparing the value con- 
tained in said second register with the received 
value of the first register to determine whether two 
values correspond for corresponding moments of 
time and whether the first and second key streams 5 
are in synchronism with one another includes add- 
ing to the received value of the first register an 
incremental value to account for a time delay in 
transmission. 

10. A method of communicating with cryptograph!- 10 
cally encoded data within a digital telecommunications 
system as set forth in claim 1 in which: 

the bits of the first pseudo-random key stream are 
combined with said stream of data bits carrying 
communications information by modulo-2 addi- 15 
tion; and 

the bits of the second pseudo-random key stream are 
combined with the received stream of crypto- 
graphically encoded data by modulo-2 subtraction. 

11. A method of communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 1 in which: 

the bits of the first pseudo-random key stream are 
combined with said stream of data bits carrying ^ 
communications information to alter the order 
thereof; and 

the bits of the second pseudo-random key stream are 
combined with the received stream of crypto- 
graphically encoded data to restore the original 3Q 
order thereof. 

12. A method of communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 1 in which the defined inter- 
vals with which the values contained in said first and 35 
second registers are incremented are regular and peri- 
odic. 

13. A method of communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 1 in which the intervals with 40 
which the value contained in said first register are trans- 
mitted to said receiver are regular and periodic. 

14. A method of communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 1 which includes the addi- 45 
tional step of: 

receiving a plurality of values of said first register 
successively transmitted to said receiver; and 

comparing said plurality of successively received first 
register values with one another after allowing for 50 
the increment of time between the transmission of 
each value to determine the accuracy of transmis- 
sion of the received first register values before 
comparing said value to said second register value. 

15. A system for communicating with cryptographs 55 
cally encoded data within a digital telecommunications 
system, comprising: 

means for generating a first pseudo-random key 
stream of bits in accordance with an algorithm 
which is a function of a multi-bit digital value con- 60 
tained in a first register; 

means for incrementing the value contained in said 
first register at defined intervals to vary the pattern 
of bits in the first key stream; 

means for combining the bits of the first pseudo-ran- 65 
dom key stream with a. stream of data bits carrying 
communications information to cryptographically 
encode said data; 
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means for transmitting said encoded data to a re- 
ceiver; 

means for transmitting to said receiver at intervals 
and interspersed with said transmissions of en- 
coded data the value contained in said first register; 

means for generating a second pseudo-random key 
stream of bits in accordance with said algorithm 
which is a function of a multi-bit digital value con- 
tained in a second register; 

means for incrementing the value contained in said 
second register at the same defined intervals as said 
first register to vary the pattern of bits in the sec- 
ond key stream in an identical fashion to the pat- 
tern of bits in the first key stream; 

means for combining the bits of the second pseudo- 
random key stream with the received stream of 
cryptographically encoded data to decode said 
data into said communications information; and 

means for periodically comparing the value con- 
tained in said second register with the received 
value of the first register to determine whether the 
two values correspond for corresponding moments 
of time and whether the first and second key 
streams are in synchronism with one another. 

16. A system for communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 15 which also includes: 

means for resetting the value contained in said second 
register with the received value of the first register 
for a corresponding moment in time when the val- 
ues have become different to resynchronize the 
first and second key streams with one another. 

17. A system for communicating with Cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 15 in which: 

said means for transmitting to said receiver at inter- 
vals and interspersed with said transmissions of 
encoded data the value contained in said first regis- 
ter includes means for multiplexing said encoded 
data transmissions and said transmissions of first 
register values. 

18. A system for communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 17 in which: 

said first register values are transmitted on a low bit 
rate auxiliary channel of a digital cellular commu- 
nications stream. 

19. A system for communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 18 wherein: 

said low bit rate auxiliary channel is a slow associated 
control channel. 

20. A system for communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 18 wherein: 

said first register values are transmitted along with 
other low-rate data on said low bit rate auxiliary 
channel. 

21. A system for communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 20 which also includes: 

means for temporarily interrupting transmission of 
said first register values when it is necessary to 
transmit other data on said low bit rate auxiliary 
channel. 

22. A system for communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 15 in which: 
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said means for periodically comparing the value con- 
tained in said second register with the received 
value of the first register to determine whether two 
values correspond for corresponding moments of 
time and whether the first and second key streams 5 
are in synchronism with one another includes 
means for adding to the received value of the first 
register an incremental value to account for a time 
delay in transmission. 

23. A system for communicating with cryptographi- 10 
cally encoded data within a digital telecommunications 
system as set forth in claim 15 in which: 

the bits of the first pseudo-random key stream are 
combined with said stream of data bits carrying 
communications information by modulo-2 addi- 15 
tion; and 

the bits of the second pseudo-random key stream are 
combined with the received stream of crypto- 
graphically encoded data by modulo-2 subtraction. 

24. A system for communicating with cryptographi- 20 
cally encoded data within a digital telecommunications 
system as set forth in claim 15 in which: 

the bits of the first pseudo-random key stream are 
combined with said stream of data bits carrying 
communications information to alter the order 25 
thereof; and 

the bits of the second pseudo-random key stream are 
combined with the received stream of crypto- 
graphically encoded data to restore the original 
order thereof. 30 

25. A method for duplex communication with crypto- 
graphically encoded data within a digital telecommuni- 
cations system, comprising: 

generating at a First location a first pseudo-random 
key stream of bits in accordance with an algorithm 35 
which is a function of a multi-bit digital value con- 
tained in a first register; 

incrementing the value contained in said first register 
at defined intervals to vary the pattern of bits in the 
first key stream; 40 

combining the bits of the first pseudo-random key 
stream with a stream of data bits carrying commu- 
nications information to be sent from said first loca- 
tion to a second location to cryptographically en- 
code said data stream and with a stream of crypto- 45 
graphically encoded data stream received from 
said second location; 

transmitting the data stream encoded at said first 
location to a receiver at said second location; 

transmitting to said receiver at said second location at 50 
intervals and interspersed with said transmissions 
of encoded data the value contained in said first 
register; 

generating a second pseudo-random key stream of 
bits in accordance with said algorithm which is a 55 
function of a multi-bit digital value contained in a 
second register; 

incrementing the value contained in said second reg- 
ister at the same defined intervals as said first regis- 
ter to vary the pattern of bits in the second key 60 
stream in an identical fashion to the pattern of bits 
in the first key stream; 

combining the bits of the second pseudo-random key 
stream with the stream of cryptographically en- 
coded data received at said second location to 65 
decode said data into said communications infor- 
mation and with a stream of data bits carrying 
communications information to be sent from said 
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second location to said first location to crypto- 
graphically encode said data stream; 

transmitting the data stream encoded at the second 
location to a receiver at the first location; 

periodically comparing the value contained in said 
second register with the received value of the first 
register to determine whether the two values cor- 
respond for corresponding moments of time and 
whether the first and second key streams are in 
synchronism with one another. 

26. A method for duplex communication with crypto- 
graphically encoded data within a digital telecommuni- 
cations system as set forth in claim 25 which also in- 
cludes: 

resetting the value contained in said second register 
with the received value of the first register for a 
corresponding moment in time when the values 
have become different to resynchronize the first 
and second key streams with one another. 

27. A method for duplex communication with crypto- 
graphically encoded data within a digital telecommuni- 
cations system as set forth in claim 25 in which: 

said step of transmitting to said receiver at intervals 
and interspersed with said transmissions of en- 
coded data the value contained in said first register 
includes multiplexing said encoded data transmis- 
sions and said transmissions of first register values. 

28. A method for duplex communication with crypto- 
graphically encoded data within a digital telecommuni- 
cations system as set forth in claim 27 in which: 

said first register values are transmitted on a low bit 
rate auxiliary channel of a digital cellular commu- 
nications stream. 

29. A method for duplex communication with crypto- 
graphically encoded data within a digital telecommuni- 
cations system as set forth in claim 28 wherein: 

said low bit rate auxiliary channel is a slow associated 
control channel. 

30. A method for duplex communication with crypto- 
graphically encoded data within a digital telecommuni- 
cations system as set forth in claim 28 wherein: 

said first register values are transmitted along with 
other low-rate data on said low bit rate auxiliary 
channel. 

31. A method for duplex communication with crypto- 
graphically encoded data within a digital telecommuni- 
cations system as set forth in claim 30 in which: 

transmission of said first register values are temporar- 
ily interrupted when it is necessary to transmit 
other data on said low bit rate auxiliary channel. 

32. A method for duplex communication with crypto- 
graphically encoded data within a digital telecommuni- 
cations system as set forth in claim 25 in which: 

said step of periodically comparing the value con- 
tained in said second register with the received 
value of the first register to determine whether the 
two values correspond for corresponding moments 
of time and whether the first and second key 
streams are in synchronism with one another in- 
cludes adding to the received value of the first 
register an incremental value to account for a time 
delay in transmission. 

33. A method for duplex communication with crypto- 
graphically encoded data within a digital telecommuni- 
cations system as set forth in claim 25 in which: 

the bits of the first pseudo-random key stream are 
combined with said stream of data bits carrying 
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communications information by modulo-2 addi- cations system as set forth in claim 36 which also in- 

tion; and eludes: 

the bits of the second pseudo-random key stream are means for resetting the value contained in said second 

combined with the received stream of crypto- register with the received value of the first register 

graphically encoded data by modulo-2 subtraction. 5 for a corresponding moment in time when the val- 

34. A method of communicating with cryptograph!- ues have become different to resynchronize the 
cally encoded data within a digital telecommunications first and second key streams with one another, 
system as set forth in claim 25 in which the defined 38. A system for duplex communication with crypto- 
interval with which the values contained in said first graphically encoded data within a digital telecommuni- 
and second registers are incremented are regular and 10 cations system as set forth in claim 36 in which: 
periodic. said step of transmitting to said receiver at interval 

35. A method of communicating with cryptographi- and interspersed with said transmissions of en- 
cally encoded data within a digital telecommunications coded data the value contained in said first register 
system as set forth in claim 25 in which the interval with includes multiplexing said encoded data transmis- 
which the value contained in said first register are trans- 15 sions and said transmissions of first register values, 
mitted to said receiver are regular and periodic. 39. A system for duplex communication with crypto- 

36. A system for duplex communication with crypto- graphically encoded data within a digital telecommuni- 
graphically encoded data within a digital telecommuni- cations system as set forth in claim 38 in which: 
cations system, comprising: said first register values are transmitted on a low bit 

means for generating at a first location a first pseudo- 20 rate auxiliary channel of a digital cellular commu- 

random key stream of bits in accordance with an nications stream. 

algorithm which is a function of a multi-bit digital 40. A system for duplex communication with crypto- 

value contained in a first register; graphically encoded data within a digital telecommuni- 

means for incrementing the value contained in said cations system as set forth in claim 39 wherein: 

first register at defined intervals to vary the pattern 25 said low bit rate auxiliary channel is a slow associated 

of bits in the first key stream; control channel. 

means for combining the bits of the first pseudo-ran- 41. A system for duplex communication with crypto- 

dom key stream with a stream of data bits carrying graphically encoded data within a digital telecommuni- 

communications information to be sent from said cations system as set forth in claim 39 wherein: 

first location to a second location to cryptographi- 30 said first register values are transmitted along with 

cally encode said data stream and with a stream of other low-rate data on said low bit rate auxiliary 

cryptographically encoded data stream received channel. 

from said second location; 42. A system for duplex communication with crypto- 

means for transmitting the data stream encoded at graphically encoded data within a digital telecommuni- 

said first location to a receiver at said second loca- 35 cations system as set forth in claim 41 in which: 

tion; transmission of said first register values are temporar- 

means for transmitting to said receiver at said second ily interrupted when it is necessary to transmit 

location at intervals and interspersed with said other data on said low bit rate auxiliary channel, 

transmissions of encoded data the value contained 43. A system for duplex communication with crypto- 

in said first register; 40 graphically encoded data within a digital telecommuni- 

means for generating a second pseudo-random key cations system as set forth in claim 36 in which: 

stream of bits in accordance with said algorithm said step of periodically comparing the value con- 

which is a function of a multi-bit digital value con- tained in said second register with the received 

tained in a second register; value of the first register to determine whether the 

means for incrementing the value contained in said 45 two values correspond for corresponding moments 

second register at the same defined intervals as said of time and whether the first and second key 

first register to vary the pattern of bits in the sec- streams are in synchronism with one another in- 

ond key stream in an identical fashion to the pat- eludes adding to the received value of the first 

tern of bits in the first key stream; register an incremental value to account for a time 

means for combining the bits of the second pseudo- 50 delay in transmission, 
random key stream with the stream of crypto- 44. A system for duplex communication with crypto- 
graphically encoded data received at said second graphically encoded data within a digital telecommuni- 
location to decode said data into said communica- cations systems as set forth in claim 36 in which: 
tions information and with a stream of data bit the bits of the first pseudo-random key stream are 
carrying communications information to be sent 55 combined with said stream of data bits carrying 
from said second location to said first location to communications information by modulo-2 addi- 
cryptographically encode said data stream; tion; and 

means for transmitting the data stream encoded at the the bits of the second pseudo-random key stream are 

second location to a receiver at the first location; combined with the received stream of crypto- 

and 60 graphically encoded data by modulo-2 subtraction. 

means for periodically comparing the value con- 45. A method of communicating with cryptographi- 

tained in said second register with the received cally encoded data within a digital telecommunications 

value of the first register to determine whether the system as set forth in claim 36 in which the defined 

two values correspond for corresponding moments intervals with which the values contained in said first 

of time and whether the first and second key 65 and second registers are incremented are regular and 

streams are in synchronism with one another. periodic. 

37. A system for duplex communication with crypto- 46. A method of communicating with cryptographi- 
graphically encoded data within a digital telecommuni- cally encoded data within a digital telecommunications 
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system as set forth in claim 36 in which the intervals 
with which the value contained in said first register are 
transmitted to said receiver are regular and periodic. 

47. A method of communicating with cryptographi- 
cally encoded data within a digital telecommunications 5 
system, comprising: 

generating a first pseudo-random key stream of bits in 
accordance with an algorithm which is a function 
of a multi-bit digital value contained in a first regis- 
ter; 10 

combining the bits of the first pseudo-random key 
stream with a stream of data bits carrying commu- 
nications information to cryptographically encode 
said data; 

transmitting said encoded data to a receiver; 15 

transmitting to said receiver at intervals and inter- 
spersed with said transmissions of encoded data the 
value contained in said first register; 

generating a second pseudo-random key stream of 
bits in accordance with said algorithm which is a 20 
function of a multi-bit digital value contained in a 
second register; 

combining the bits of the second pseudo-random key 
stream with the received stream of cryptographi- 
cally encoded data to decode said data into said 25 
communications information; and 

periodically comparing the value contained in said 
second register with the received value of the first 
register to determine whether the two values cor- 
respond for corresponding moments of time and 30 
whether the first and second key streams are in 
synchronism with one another. 

48. A method of communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 47 which also includes: 35 

resetting the value contained in said second register 
with the received value of the first register for a 
corresponding moment in time resynchronize the 
first and second key streams with one another. 

49. A method of communicating with cryptographi- 40 
cally encoded data within a digital telecommunications 
system as set forth in claim 48 which also includes: 

incrementing the value contained in said first register 
at defined intervals to vary the pattern of bits in the 
first key stream; and 45 

incrementing the value contained in said second reg- 
ister at the same intervals as said first register to 
vary the pattern of bits in the second key stream in 
an identical fashion to the pattern of bits in the first 
key stream. 50 

50. A system for communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system, comprising: 

means for generating a first pseudo-random key 
stream of bits in accordance with an algorithm 55 
which is a function of a multi-bit digital value con- 
tained in a first register; 

means for combining the bits of the first pseudo-ran- 
dom key stream with a stream of data bits carrying 
communications information to cryptographically 60 
encode said data; 

means for transmitting said encoded data to a re- 
ceiver; 

means for transmitting to said receiver at intervals 
and interspersed with said transmissions of en- 65 
coded data the value contained in said first register; 

means for generating a second pseudo-random key 
stream of bits in accordance with said algorithm 



which is a function of a multi-bit digital value con- 
tained in a second register; 

means for combining the bits of the second pseudo- 
random key streams with the received stream of 
cryptographically encoded data to decode said 
data into said communications information; and 

means for periodically comparing the value con- 
tained in said second register with the received 
value of the first register to determine whether the 
two values correspond for corresponding moments 
of time and whether the first and second key 
streams are in synchronism with one another. 

51. A system for communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 50 which also includes: 

means for resetting the value contained in said second 
register with the received value of the first register 
for a corresponding moment in time to resynchro- 
nize the first and second key streams with one 
another. 

52. A system for communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 51 which also includes: 

means for incrementing the value contained in said 
first register at defined intervals to vary the pattrn 
of bits in the first key stream; and 

means for incrementing the value contained in said 
second register at the same intervals as said first 
register to vary the pattern of bits in the second key 
stream in an identical fashion to the pattern of bits 
in the first key stream. 

53. A method for duplex communication with crypto- 
graphically encoded data within a digital telecommuni- 
cations system, comprising: 

generating at a first location a first pseudo-random 
key stream of bits in accordance with an algorithm 
which is a function of a multi-bit digital value con- 
tained in a first register; 

combining the bits of the first pseudo-random key 
stream with a stream of data bits carrying commu- 
nications information to be sent from said first loca- 
tion to a second location to cryptographically en- 
code said data stream and with a stream of crypto- 
graphically encoded data stream received from 
said second location; 

transmitting the data stream encoded at said first 
location to a receiver at said second location; 

transmitting to said receiver at said second location at 
intervals and interspersed with said transmissions 
of encoded data the value contained in said first 
register; 

generating a second pseudo-random key stream of 
bits in accordance with said algorithm which is a 
function of a multi-bit digital value contained in a 
second register; 

combining the bits of the second pseudo-random key 
stream with the stream of cryptographically en- 
coded data received at said second location to 
decode said data into said communications infor- 
mation and with a stream of data bits carrying 
communications information to be sent from said 
second location to said first location to crypto- 
graphically encode said data stream; 

transmitting the data stream encoded .at the second 
location to a receiver at the first location; 

periodically comparing the value contained in said 
second register with the received value of the first 
register to determine whether the two values cor- 
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respond for corresponding moments of time and 
whether the first and second key streams are in 
synchronism with one another. 

54. A method of communicating with cryptographi- 
cally encoded data within a digital telecommunications 5 
system as set forth in claim 53 which also includes: 

resetting the value contained in said second register 
with the received value of the first register for a 
corresponding moment in time to resynchronize 
the first and second key streams with one another. 

55. A method of communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 54 which also includes: 

incrementing the value contained in said first register 15 
at defined intervals to vary the pattern of bits in the 
first key stream; and 

incrementing the value contained in said second reg- 
ister at the same intervals as said first register to 
vary the pattern of its in the second key stream in 20 
an identical fashion to the pattern of bits in the first 
key stream. 

56. A system for duplex communication with crypto- 
graphically encoded data within a digital telecommuni- 
cations system, comprising: 25 

means for generating at a first location a first pseudo- 
random key stream of bits in accordance with an 
algorithm which is a function of a multi-bit digital 
value contained in a first register; ^ 

means for combining the bits of the first pseudo-ran- 
dom key stream with a stream of data bits carrying 
communications information to be sent from said 
first location to a second location to cryptographi- 
cally encode said data stream and with a stream of 35 
cryptographically encoded data stream received 
from said second location; 

means for transmitting the data stream encoded at 
said first location to a receiver at said second loca- 
tion; 40 

means for transmitting to said receiver at said second 
location at intervals and interspersed with said 
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transmissions of encoded data the value contained 
in said first register; 

means for generating a second pseudo-random key 
stream of bits in accordance with said algorithm 
which is a function of a multi-bit digital value con- 
tained in a second register; 

means for combining the bits of the second pseudo- 
random key stream with the stream of crypto- 
graphically encoded data received at said second 
location to decode said data into said communica- 
tions information and with a stream of data bit 
carrying communications information to be sent 
from said second location to said first location to 
cryptographically encode said data stream; 

means for transmitting the data stream encoded at the 
second location to a receiver at the first location; 
and 

means for comparing the value contained in said 
second register with the received value of the first 
register to determine whether the two values cor- 
respond for corresponding moments of time and 
whether the first and second key streams are in 
synchronism with one another. 

57. A method of communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 56 which also includes: 

resetting the value contained in said second register 
with the received value of the first register for a 
corresponding moment in time to resynchronize 
the first and second key streams with one another. 

58. A method of communicating with cryptographi- 
cally encoded data within a digital telecommunications 
system as set forth in claim 57 which also includes: 

incrementing the value contained in said first register 
at defined intervals to vary the pattern of bits in the 
first key stream; and 

incrementing the value contained in said second reg- 
ister at the same intervals as said first register to 
vary the pattern of bits in the second key stream in 
an identical fashion to the pattern of bits in the first 
key stream. 

***** 
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